Sample details: bdc7b944b9319f9708af1949b42bae4b --

Hashes
MD5: bdc7b944b9319f9708af1949b42bae4b
SHA1: e88c7b522f64b01b442ffb23f2c5c8656033b22c
SHA256: 83b5c76d938bc50e58c851d56ef8cbc1001d2e81a1e1f8f5dfed2245244c1472
SSDEEP: 192:qUXJRZobEm7QNw7MPDdqPSU+WErXUnv3XDVR6yHXc1U5O:qUXJnjCAPDdFBWGXoPzV53u1
Details
File Type: PE32
Yara Hits
YRP/Visual_Cpp_2005_DLL_Microsoft | YRP/Visual_Cpp_2003_DLL_Microsoft | YRP/IsPE32 | YRP/IsDLL | YRP/IsWindowsGUI | YRP/HasDebugData | YRP/IsBeyondImageSize | YRP/HasRichSignature | YRP/domain | YRP/contentis_base64 | YRP/anti_dbg | YRP/Str_Win32_Winsock2_Library | FlorianRoth/DragonFly_APT_Sep17_3 |
Parent Files
fb1a2d0db81979e09128630bc2c82c53
Source
Strings
		!This program cannot be run in DOS mode.
`.rdata
@.data
.reloc
arguments 1-3 must be sequences
too many file descriptors in select()
select
timeout must be a float or None
timeout period too long
select.error
RSDS3k
C:\build27\cpython\PCBuild\select.pdb
WS2_32.dll
PyEval_RestoreThread
PyList_SetItem
PySequence_Fast
PyExc_OverflowError
_Py_NoneStruct
PyEval_SaveThread
PyExc_ValueError
PyErr_Occurred
PyErr_SetString
PyErr_NewException
PyTuple_Pack
PyFloat_AsDouble
PyNumber_Check
PyObject_AsFileDescriptor
PyList_New
PyErr_SetExcFromWindowsErr
PyModule_AddObject
PyExc_TypeError
Py_InitModule4
PyArg_UnpackTuple
python27.dll
_encode_pointer
_malloc_crt
_encoded_null
_decode_pointer
_initterm
_initterm_e
_amsg_exit
_adjust_fdiv
__CppXcptFilter
_crt_debugger_hook
__clean_type_info_names_internal
_unlock
__dllonexit
_onexit
MSVCR90.dll
_except_handler4_common
InterlockedExchange
InterlockedCompareExchange
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
DisableThreadLibraryCalls
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
KERNEL32.dll
select.pyd
initselect
select(rlist, wlist, xlist[, timeout]) -> (rlist, wlist, xlist)
Wait until one or more file descriptors are ready for some kind of I/O.
The first three arguments are sequences of file descriptors to be waited for:
rlist -- wait until ready for reading
wlist -- wait until ready for writing
xlist -- wait for an ``exceptional condition''
If only one kind of condition is required, pass [] for the other lists.
A file descriptor is either a socket or file object, or a small integer
gotten from a fileno() method call on one of those.
The optional 4th argument specifies a timeout in seconds; it may be
a floating point number to specify fractions of seconds.  If it is absent
or None, the call will never time out.
The return value is a tuple of three lists corresponding to the first three
arguments; each contains the subset of the corresponding file descriptors
that are ready.
*** IMPORTANT NOTICE ***
On Windows and OpenVMS, only sockets are supported; on Unix, all file
descriptors can be used.
This module supports asynchronous I/O on multiple file descriptors.
*** IMPORTANT NOTICE ***
On Windows and OpenVMS, only sockets are supported; on Unix, all file descriptors.
0"1)101
4I5N5S5Y5k5q5y5
6 6)60656K6W6u6}6
7!7-7=7C7J7a7g7
8%8-8X8_8d8i8p8}8
:':/:7:C:L:Q:W:a:j:u:
;6;L;Y;
<P=V=\=b=s=
>6>C>O>W>_>k>
0 1$14282